{"vulnerability": "cve-2021-3900", "sightings": [{"uuid": "bb4c2c1b-0ffc-4be0-9f90-0b219dbdd693", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39006", "type": "seen", "source": "https://t.me/cibsecurity/44917", "content": "\u203c CVE-2021-39006 \u203c\n\nIBM QRadar WinCollect Agent 10.0 and 10.0.1 could allow an attacker to obtain sensitive information due to missing best practices. IBM X-Force ID: 213549.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-06-21T20:27:46.000000Z"}, {"uuid": "ee33890c-7900-4311-9078-98bcf901233c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39000", "type": "seen", "source": "https://t.me/cibsecurity/33121", "content": "\u203c CVE-2021-39000 \u203c\n\nIBM MQ Appliance 9.2 CD and 9.2 LTS could allow a local attacker to obtain sensitive information by inclusion of sensitive data within diagnostics. IBM X-Force ID: 213215.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-11-30T20:35:37.000000Z"}, {"uuid": "442062dd-5948-4878-a759-3882853763d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39009", "type": "seen", "source": "https://t.me/cibsecurity/49189", "content": "\u203c CVE-2021-39009 \u203c\n\nIBM Cognos Analytics 11.1.7, 11.2.0, and 11.2.1 stores user credentials in plain clear text which can be read by a local privileged user. IBM X-Force ID: 213554.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2022-09-01T22:38:34.000000Z"}, {"uuid": "71a0ea40-bd0b-4ec5-a1f5-94278fb422eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-39002", "type": "seen", "source": "https://t.me/cibsecurity/33715", "content": "\u203c CVE-2021-39002 \u203c\n\nIBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-12-09T20:23:57.000000Z"}, {"uuid": "e1a9b713-4643-4f0a-b794-ab34f7925f53", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2021-3900", "type": "seen", "source": "https://t.me/cibsecurity/31320", "content": "\u203c CVE-2021-3900 \u203c\n\nfirefly-iii is vulnerable to Cross-Site Request Forgery (CSRF)\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2021-10-27T22:16:41.000000Z"}]}